Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/1OsLjW5b8aVVJJzwLim7p-G5gC4.roa
File: 1OsLjW5b8aVVJJzwLim7p-G5gC4.roa (raw, json)
Hash identifier: DivtSbHLORvJka/+oW46nvp/0XfIaDdPk/1kCk8SB6A=
Subject key identifier: D4:EB:0B:8D:6E:5B:F1:A5:55:24:9C:F0:2E:29:BB:A7:E1:B9:80:2E
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 42759E9D
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/1OsLjW5b8aVVJJzwLim7p-G5gC4.roa
Signing time: Sat 01 Jan 2022 14:03:18 +0000
ROA not before: Sat 01 Jan 2022 14:03:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51132
IP address blocks: 193.181.43.0/24 maxlen: 24
193.181.48.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1115004573 (0x42759e9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 14:03:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d4eb0b8d6e5bf1a555249cf02e29bba7e1b9802e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:98:3b:ad:ae:fd:15:8e:da:b5:da:5c:4d:f3:
bf:ef:bd:aa:c5:19:c1:36:bd:df:db:27:8f:4f:47:
bb:a7:df:45:e9:ae:33:89:5f:59:eb:52:43:62:ef:
74:46:ed:68:a1:b1:e2:12:b3:30:cd:ab:87:47:c6:
60:cf:b8:bf:9a:39:f8:68:ef:55:2e:0d:e1:50:aa:
a2:aa:60:0a:d2:da:0a:02:3b:10:b8:f6:09:48:04:
f4:52:25:b6:7c:5f:7d:f0:e0:3e:cc:89:91:fa:36:
f0:a7:ab:2d:5f:b1:37:1d:db:24:9d:2c:c2:e1:1b:
fa:e8:e5:c7:aa:79:35:cd:a4:16:c9:a0:bd:02:62:
b8:94:cc:14:46:1f:2e:9d:bf:67:78:9d:89:df:bf:
15:13:48:d3:69:81:b5:43:d3:57:b8:3f:81:f1:0a:
c4:49:d6:90:fc:1c:9e:0e:6a:a3:24:00:50:59:2b:
1b:2d:0e:4c:36:95:fa:7e:21:de:b7:c8:43:dc:ac:
91:b5:2b:ab:66:57:87:a3:a9:26:7c:28:ea:70:90:
b2:de:6e:40:24:b4:18:47:76:24:f8:5a:74:ba:4a:
2e:fe:2b:14:1e:6c:cb:33:88:b9:0f:29:ff:c4:04:
76:94:87:67:57:18:01:a1:f0:78:99:54:3b:fc:be:
ff:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:EB:0B:8D:6E:5B:F1:A5:55:24:9C:F0:2E:29:BB:A7:E1:B9:80:2E
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/1OsLjW5b8aVVJJzwLim7p-G5gC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.181.43.0/24
193.181.48.0/22
Signature Algorithm: sha256WithRSAEncryption
16:5c:a6:93:7c:f4:b0:49:50:f7:9c:54:aa:87:3d:cf:af:85:
57:9e:8e:d5:6b:75:37:87:fe:01:cc:c6:0e:bd:17:a2:dc:8a:
95:b1:ee:c5:51:93:8e:3e:0f:ad:6d:f5:ef:a5:00:24:ed:ad:
4f:a6:1d:2c:4d:27:38:2b:0e:4d:70:c4:7c:4a:86:62:14:11:
8f:23:5d:2e:29:0b:56:12:dc:00:c2:d7:b4:cb:9b:db:74:87:
da:68:bc:c2:64:d1:c0:ab:d5:5c:06:45:75:8c:d5:70:bf:55:
d1:12:c4:09:72:8d:b7:5f:42:a3:5a:54:3f:11:e2:21:69:c7:
bc:bf:98:5e:ac:2e:52:5d:d4:1b:d0:f0:2a:40:3e:bc:a7:8f:
73:e7:01:c5:c4:e1:4e:59:38:96:c1:42:8f:26:bb:ab:25:a2:
e4:4d:b0:9c:76:11:23:7f:88:91:d0:e7:12:5e:71:9c:5f:f1:
d6:a1:81:dd:68:97:52:88:bb:1b:82:a4:c5:2a:c7:00:92:b9:
ab:c9:b8:2c:d4:28:a0:16:6c:77:3a:95:e0:bd:d2:9f:a5:b5:
62:51:ef:5c:90:92:9b:82:ea:3d:c2:f9:4a:1c:ff:1d:80:8d:
b3:87:d8:8d:19:dc:e8:ff:9e:b8:b2:cc:32:f5:99:29:ab:74:
50:b1:38:1a
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEQnWenTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
MTM1YzdmNTcxZWVmZWI2NzQwNGFiNmM0NWZkNDc1NTUxYWRhZjFiMB4XDTIyMDEw
MTE0MDMxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDRlYjBiOGQ2ZTVi
ZjFhNTU1MjQ5Y2YwMmUyOWJiYTdlMWI5ODAyZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAISYO62u/RWO2rXaXE3zv++9qsUZwTa939snj09Hu6ffRemu
M4lfWetSQ2LvdEbtaKGx4hKzMM2rh0fGYM+4v5o5+GjvVS4N4VCqoqpgCtLaCgI7
ELj2CUgE9FIltnxfffDgPsyJkfo28KerLV+xNx3bJJ0swuEb+ujlx6p5Nc2kFsmg
vQJiuJTMFEYfLp2/Z3idid+/FRNI02mBtUPTV7g/gfEKxEnWkPwcng5qoyQAUFkr
Gy0OTDaV+n4h3rfIQ9yskbUrq2ZXh6OpJnwo6nCQst5uQCS0GEd2JPhadLpKLv4r
FB5syzOIuQ8p/8QEdpSHZ1cYAaHweJlUO/y+/yECAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBTU6wuNblvxpVUknPAuKbun4bmALjAfBgNVHSMEGDAWgBQhNcf1ce7+tnQE
q2xF/UdVUa2vGzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0lUWEg5WEh1X3JaMEJLdHNSZjFIVlZHdHJ4cy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDkvNjgwYjc4LTk2YWYtNGE4NS1hYzAyLTk0M2QwMzMyMTMyNi8x
LzFPc0xqVzViOGFWVkpKendMaW03cC1HNWdDNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDkv
NjgwYjc4LTk2YWYtNGE4NS1hYzAyLTk0M2QwMzMyMTMyNi8xL0lUWEg5WEh1X3Ja
MEJLdHNSZjFIVlZHdHJ4cy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAMG1KwMEAsG1MDANBgkqhkiG9w0B
AQsFAAOCAQEAFlymk3z0sElQ95xUqoc9z6+FV56O1Wt1N4f+AczGDr0XotyKlbHu
xVGTjj4PrW3176UAJO2tT6YdLE0nOCsOTXDEfEqGYhQRjyNdLikLVhLcAMLXtMub
23SH2mi8wmTRwKvVXAZFdYzVcL9V0RLECXKNt19Co1pUPxHiIWnHvL+YXqwuUl3U
G9DwKkA+vKePc+cBxcThTlk4lsFCjya7qyWi5E2wnHYRI3+IkdDnEl5xnF/x1qGB
3WiXUoi7G4KkxSrHAJK5q8m4LNQooBZsdzqV4L3Sn6W1YlHvXJCSm4LqPcL5Shz/
HYCNs4fYjRnc6P+euLLMMvWZKat0ULE4Gg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:47 2023 by rpki-client on console-fra.rpki-client.org